ibm

8,320 tracked vulnerabilities.

CVE-2020-4741 MEDIUM
IBM InfoSphere Information Server 11.5 and 11.7 - Stored Cross-Site Scripting
Oct 12, 2020
CVSS 5.4
EPSS 0.01
CVE-2020-4740 MEDIUM
IBM InfoSphere Information Server 11.5 and 11.7 - HTML Injection
Oct 12, 2020
CVSS 5.2
EPSS 0.01
CVE-2020-4689 MEDIUM
IBM Security Guardium 11.2 - Command Injection
Oct 12, 2020
CVSS 6.8
EPSS 0.02
CVE-2020-4681 MEDIUM
IBM Security Guardium 11.2 - Stored Cross-Site Scripting
Oct 12, 2020
CVSS 5.4
EPSS 0.01
CVE-2020-4680 MEDIUM
IBM Security Guardium 11.2 - Stored Cross-Site Scripting in Web UI
Oct 12, 2020
CVSS 5.4
EPSS 0.01
CVE-2020-4679 MEDIUM
IBM Security Guardium 11.2 - Stored Cross-Site Scripting
Oct 12, 2020
CVSS 4.8
EPSS 0.01
CVE-2020-4678 MEDIUM
IBM Security Guardium 11.2 - Privilege Escalation
Oct 12, 2020
CVSS 4.9
EPSS 0.01
CVE-2020-4388 HIGH
IBM Cognos Analytics 11.0-11.1 - Denial of Service via Exception Handling Failure
Oct 12, 2020
CVSS 8.2
EPSS 0.01
CVE-2020-4302 HIGH
IBM Cognos Analytics 11.0-11.1 - Remote Code Execution via CSV Injection
Oct 12, 2020
CVSS 7.8
EPSS 0.02
CVE-2020-4781 MEDIUM
IBM Curam Social Program Management 7.0.9-7.0.10 - Denial of Service via Improper Input Validation
Oct 12, 2020
CVSS 6.5
EPSS 0.01
CVE-2020-4780 MEDIUM
IBM Curam Social Program Management 7.0.9-7.0.10 - Insufficient Session Expiration via Missing Secure Cookie Attribute
Oct 12, 2020
CVSS 5.3
EPSS 0.01
CVE-2020-4779 HIGH
IBM Curam Social Program Management 7.0.9-7.0.10 - HTTP Verb Tampering
Oct 12, 2020
CVSS 8.1
EPSS 0.01
CVE-2020-4778 HIGH
IBM Curam Social Program Management 7.0.9 and 7.0.10 - Use of Broken Cryptographic Algorithm via MD5 Token Hashing
Oct 12, 2020
CVSS 7.5
EPSS 0.01
CVE-2020-4776 HIGH
IBM Curam Social Program Management 7.0.9-7.0.10 - Path Traversal via URL Request
Oct 12, 2020
CVSS 7.5
EPSS 0.02
CVE-2020-4775 MEDIUM
IBM Curam Social Program Management 7.0.9 and 7.0.10 - Cross-Site Scripting
Oct 12, 2020
CVSS 5.4
EPSS 0.01
CVE-2020-4774 MEDIUM
IBM Curam Social Program Management <7.0.10 - Info Disclosure
Oct 12, 2020
CVSS 5.4
EPSS 0.01
CVE-2020-4773 MEDIUM
IBM Curam Social Program Management 7.0.9 and 7.0.10 - Cross-Site Request Forgery
Oct 12, 2020
CVSS 6.5
EPSS 0.01
CVE-2020-4772 HIGH
IBM Curam Social Program Management 7.0.9 and 7.0.10 - XML External Entity Injection
Oct 12, 2020
CVSS 8.1
EPSS 0.01
CVE-2020-4699 MEDIUM
IBM Security Access Manager 9.0.7 and Security Verify Access 10.0.0 - Timing Side-Channel Information Disclosure
Oct 12, 2020
CVSS 5.3
EPSS 0.00
CVE-2020-4661 MEDIUM
IBM Security Access Manager 9.0.7 and Security Verify Access 10.0.0 - Timing Side-Channel Information Disclosure
Oct 12, 2020
CVSS 5.3
EPSS 0.00
CVE-2020-4660 MEDIUM
IBM Security Access Manager 9.0.7 and Security Verify Access 10.0.0 - Timing Side-Channel Information Disclosure
Oct 12, 2020
CVSS 5.3
EPSS 0.00
CVE-2020-4799 HIGH
IBM Informix Dynamic Server 14.10 - Out-of-bounds Write
Oct 08, 2020
CVSS 7.8
EPSS 0.00
CVE-2020-4280 HIGH
IBM QRadar SIEM 7.3.0-7.3.2 and 7.4.0 - Remote Code Execution via Java Deserialization
Oct 08, 2020
CVSS 8.8
EPSS 0.73
CVE-2020-4528 MEDIUM
IBM DataPower Gateway 10.0.0.0 and 2018.4.1.0-2018.4.1.12 - Information Disclosure via Log Files
Oct 06, 2020
CVSS 5.5
EPSS 0.00
CVE-2020-4493 CRITICAL
IBM Maximo Asset Mgmt <7.6.1 - Auth Bypass
Oct 05, 2020
CVSS 9.8
EPSS 0.03